Static task
static1
General
-
Target
57e192c274920620b2b5d01790f41ac2
-
Size
10KB
-
MD5
57e192c274920620b2b5d01790f41ac2
-
SHA1
30da9ebeb1231276b0bb28412d4731ebb9adb4a7
-
SHA256
63a784f619c7d840276719c03d006e4ae1be4242f0dd310b28dfb195ec41889d
-
SHA512
3c15c40053b6dc91837fd8241b1a3ebcd2dd3b39c866eae9b36208c970454e5cb560dff7dc8f8bee8a35ea9143d0f1e09ed8be8bd240b9fba14207e188b34fa0
-
SSDEEP
96:e75FjEsnUQ6bVkaGRsC4+TfyNcML+A/VEqmAbCSPYM2EzFxw:m56snUQdstEgEUbCStTw
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 57e192c274920620b2b5d01790f41ac2
Files
-
57e192c274920620b2b5d01790f41ac2.sys windows:5 windows x86 arch:x86
4edfd276e71f47012f7caa2851028913
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
IofCompleteRequest
ZwDeleteFile
RtlInitUnicodeString
Sections
.text Size: 9KB - Virtual size: 9KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 128B - Virtual size: 97B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
INIT Size: 256B - Virtual size: 132B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 256B - Virtual size: 220B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ